A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use. - chvancooten/BugBountyScanner

Android Bug Hunting. Contribute to themultimind/Android-Pentesting development by creating an account on GitHub.

Welcome to a 5 part series on Recon with ProjectDiscovery! * Part 1 * Part 2 * Part 3 * Part 4 * Part 5 *

Subdomain enumeration is an essential reconnaissance technique in the fields of penetration testing and bug bounty hunting. In this part of our series…

Server-side prototype pollution is hard to detect black-box without causing a DoS. In this post, we introduce a range of safe detection techniques, which we've also implemented in an open source Burp

// Membership //
Want to learn all about cyber-security and become an ethical hacker? Join this channel now to gain access into exclusive ethical hacking videos by clicking this link: https://www.youtube.com/channel/UC1szFCBUWXY3ESff8dJjjzw/join

// Courses…

Makes reverse engineering Android apps easier, automating repetitive tasks like pulling, decoding, rebuilding and patching an APK. - ax/apk.sh

Writeup for a technique I found to leak an AWS account ID from an Amplify app.

A simple script just made for self use for bypassing 403 - iamj0ker/bypass-403

jsleak is a tool to find secret , paths or links in the source code during the recon. - byt3hx/jsleak

Weaponizing WaybackUrls for Recon, BugBounties , OSINT, Sensitive Endpoints and what not - anmolksachan/TheTimeMachine

fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain. - musana/fuzzuli

Permanent dark(er) theme for Poole

Learn how to bypass Cloudflare's anti-bot protection so you can reliably scrape Cloudflare protected websites.

This link will take you to a page that’s not on LinkedIn

Hi, I’m Aakash Rathee, a Security Engineer III at Esper. I work on a variety of security topics, including Application Security, Cloud…